Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming Another disappearing session bug?
Another disappearing session bug?
  • El Forum
    Guest
  •  
#9
11-04-2012, 12:58 PM

[eluser]gox123[/eluser]
Hold on a second.. Is this secure?
The whole idea behind updating session_id is to prevent attacker from guessing it by using brute force.

If you want to use above hack, you have to at least make sure that pages containing sensitive information are not accessible by ajax.


Messages In This Thread
Another disappearing session bug? - by El Forum - 08-17-2012, 11:09 AM
Another disappearing session bug? - by El Forum - 08-21-2012, 01:57 AM
Another disappearing session bug? - by El Forum - 08-21-2012, 02:46 AM
Another disappearing session bug? - by El Forum - 08-21-2012, 03:14 AM
Another disappearing session bug? - by El Forum - 08-23-2012, 02:35 PM
Another disappearing session bug? - by El Forum - 10-23-2012, 02:12 AM
Another disappearing session bug? - by El Forum - 10-23-2012, 02:27 AM
Another disappearing session bug? - by El Forum - 10-23-2012, 09:03 AM
Another disappearing session bug? - by El Forum - 11-04-2012, 12:58 PM
Another disappearing session bug? - by El Forum - 12-15-2012, 01:09 AM



Theme © iAndrew 2016 - Forum software by © MyBB